WDefender.exe

Is DLL Packer Anti Debug Anti VM Signed XOR AntiVirus 13/71 Related 2708
File details Download PDF Report
File type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
File size: 303.00 KB (310272 bytes)
Compile time: 2019-09-17 22:16:01
MD5: 0f5eddedd151aab4ae36e6e7d0e65f9f
SHA1: 9adcb415c42831c5a625f0ec847c953cd2129d67
SHA256: ef6ff983d999c268057961115800c1c53426cd5ea4cf97f69df913c3938fbbaf
Import hash: f34d5f2d4577ed6d9ceec516c1f5a744
Sections 3 .text .rsrc .reloc
Directories 3 import resource relocation
First submission: 2019-09-18 07:33:03
Last submission: 2019-09-18 07:33:03
Filename detected: - WDefender.exe (1)
URL file hosting
hXXp://185.250.240.84/files/WDefender.exeVirusTotal
Antivirus Report
Report Date Detection Ratio Permalink Update
2019-09-17 20:36:38 [13/71] VirusTotal
PE Sections 2 suspicious
Name VAddress VSize Size MD5 SHA1
.text 0x2000 0x4b164 307712 5b10ff2e90457636aff251d6c5c4f1ff eb8b2ec39eb66e5667a6489c86fd6dc7ece3e60d
.rsrc 0x4e000 0x5d8 1536 9b206641d768e7f9d18c56645d6e5f62 42bb3ecfee482b1701a1e67d1a3774701d9d54ba
.reloc 0x50000 0xc 512 9ad9f4f06f5f02511c464624159bd348 f27054f027e88e25a8dd856602e5a3a0302ef6c5
Meta Info
No Meta found in this file
XOR
No XOR informations found in this file.
Signature
This file isn't digitally signed
Packer(s)
Microsoft Visual C# / Basic .NET
Microsoft Visual Studio .NET
.NET executable
Microsoft Visual C# v7.0 / Basic .NET
File found
FIle type: Library
mscoree.dll
IP Found
235.111.111.111
192.168.1.122
URL(s)
No URL found

#infosec #automation

TheSystem Itself @ 2019-09-18 07:33:05